Article 15834 at 09/07/21 07:48:44 From: frequentis75 (at mark) yahoo.ca Subject: [coba-e:15834] Re: Godaddy SSL problems

Index: [Article Count Order] [Thread]

Date: Mon, 20 Jul 2009 15:48:41 -0700 (PDT) From: Dan <frequentis75 (at mark) yahoo.ca> Subject: [coba-e:15834] Re: Godaddy SSL problems To: coba-e (at mark) bluequartz.org Message-Id: <56549.36669.qm (at mark) web110614.mail.gq1.yahoo.com> In-Reply-To: <6FC00233-A629-456A-B1AE-EE3006B56783 (at mark) sikesland.com> References: <C1400FCA-E3A2-49D6-A559-4E8A5CAB674B (at mark) sikesland.com> <09F7F03B3B0C499D9A94BA82810D17DB (at mark) OfficeKen> <6FC00233-A629-456A-B1AE-EE3006B56783 (at mark) sikesland.com> X-Mail-Count: 15834

�

________________________________
From: John Sikes <jsikes (at mark) sik=esland.com>
To: coba-e (at mark) bluequartz.org
Sent: Monday, July 20, 2009 3:21:=26 PM
Subject: [coba-e:15832] Re: Godaddy SSL problems

----- Orig=inal Message ----- From: John Sikes
To:�coba-e (at mark) bluequartz.org
Sent: S=aturday, July 18, 2009 8:57 PM
Subject: [coba-e:15824] Godaddy SSL proble=ms

I have checked in the archives and have seen a lot of issues wit=h GoDaddy SSl's. �I have an vsite that has purchased one and I need to ge=t it installed and working properly. ��I followed the normal ssl instal=l instructions from the manual and it 'kinda' works. �The problems appear=s to be with the intermediate cert. �The instructions state to add 3 line=s to the httpd.conf file,

Open the Apache httpd.conf file and add t=he following directives:
SSLCertificateFile /path to certificate file/you=r issued certificate
SSLCertificateKeyFile /path to key file/your key fil=e
SSLCertificateChainFile /path to intermediate certificate/null
but th=ere instructions are for a service wide install. �I would think that they= should be put into the correct vhost.include file for the vsite. �This h=owever results in an unhappy response from apache.

Starting httpd: =Syntax error on line 5 of /etc/httpd/conf.d/ssl_perl.conf:
$s->add_config=() has failed: SSLCertificateChainFile: file '/home/sites/domain.com/gd_bun=dle.crt/null' does not exist or is empty at /usr/lib/perl5/vendor_perl/5.8.=5/i386-linux-thread-multi/Apache/PerlSections.pm line 203.\n

Worse =yet is web server crashes a few minutes and can not be restarted.

I= commented out the changes, restarted apache and everything was as it was..=. 'kinda' working (IE is OK, Firefox does not recognize the CA).

I =know that is is not a root cert, but there is not much I can do about that,= I just need to find how to make it work at this point.

Any suggest=ions?

Thanks.
John Sikes
<<

John

Why don't you =just install the intermediate certs from the GUI �and let it add the �l=ines to the correct conf file automatically for you.

----
Ken Mar=cus
Ecommerce Web Hosting by
Precision Web Hosting, Inc.
http://www.p=recisionweb.net 

<<
Thanks for the response Ken. �
That was the =first thing I tried to do. �
The stand alone intermediate cert file giv=es an error trying to import stating that the certificate does not contain =the private key.

I contacted goDaddy directly and that is when I start=ed to try to find the manual way to install the ssl. �They state that the= intermediate file is contained in the gd_bundle.crt. �This file contains= 2 certs and BQ didn't like it either. �My call to tech support ended wit=h a polite "sorry, we can't help you".�

If you have successfully use=d one of their SSL's and have instructions on installing, I would appreciat=e it.

John Sikes

Hi Blues,

First post here but have been a s=ubcriber for�about a year and have found this forum to be useful so now I= have an opportunity to return the favour.� Have successfully installed a= few GoDaddy certs and most of the time it works well through the GUI, but =with one server it didn't.� I found this article from an older post, can'=t remember as it was some time ago whether it was a�5102R or 5100R build =of BlueQuartz, but with the server that it didn't work through the GUI I ha=d to modify the ssl_perl.conf file as described here:
http://bluequartz.o=rg/ml/archive/coba-e/9600/9605.html

Might not be your exact situation =but hopefully this will lead you in the right direction.

Dan

=
      __________________________________________________________________=
Get a sneak peak at messages with a handy reading pane with All new Yaho=o! Mail: http://ca.promos.yahoo.com/newmail/overview2/

15834_2.html (attatchment)(tag is disabled)